XSS attack risk analysis method and device based on Bayesian network model

A technology of Bayesian network and risk analysis, applied in the direction of specific mathematical model, probability network, calculation model, etc., can solve the problems of high false negative rate, harm, and failure to protect the network system in time, and achieve the effect of good data support

Active Publication Date: 2021-07-30
NAT UNIV OF DEFENSE TECH
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Among all kinds of Web attacks, Cross Site Scripting (XSS) is a relatively common type of attack. Many information systems are based on B/S architecture and involve browsers. The risk of being attacked by XSS is very high. High, one XSS attack may cause greater harm
[0003] At present, the defense method for XSS attacks is mainly to filter the keywords of the input information on the server and the client, but this method has a

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • XSS attack risk analysis method and device based on Bayesian network model
  • XSS attack risk analysis method and device based on Bayesian network model
  • XSS attack risk analysis method and device based on Bayesian network model

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0058] In order to make the purpose, technical solution and advantages of the present application clearer, the present application will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present application, and are not intended to limit the present application.

[0059] In one embodiment, such as figure 1 As shown, a Bayesian network model-based XSS attack risk analysis method is provided, including the following steps:

[0060] Step 102: Establish a STRIDE threat model of the network to be analyzed according to preset network components and threat types encountered by network data flows.

[0061] STRIDE is an acronym for six types of threats in English, the six threats are deception (Spoofing), tampering with data (Tampering), denial (Repudiation), information disclosure (InformationDisclosure), denial of service (Denial of Serv...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to an XSS attack risk analysis method and device based on a Bayesian network model. According to the method, a Bayesian network is used for directly constructing a network structure part of an XSS attack risk analysis model, prior probabilities of nodes in the Bayesian network model are obtained according to expert experience, a conditional probability table of the nodes is obtained through learning, and the complete XSS attack risk analysis model is obtained. In the XSS attack risk analysis model, through Bayesian network reasoning, the risk that a network system suffers from XSS attacks can be quantitatively analyzed, and a corresponding risk analysis result is obtained. According to the method, the XSS attack risk analysis model is constructed on the basis of the STRIDE threat model based on a network component and network data stream transmission relationship, so that the risk of the network suffering from the XSS attack can be quantitatively analyzed, the weak link in the network security protection can be found, and good data support can be provided for the formulation of a network defense strategy.

Description

technical field [0001] The present application relates to the technical field of network security, in particular to a Bayesian network model-based XSS attack risk analysis method and device. Background technique [0002] Over the past two decades, modern society's reliance on web applications has increased dramatically. Among all kinds of Web attacks, Cross Site Scripting (XSS) is a relatively common type of attack. Many information systems are based on B / S architecture and involve browsers. The risk of being attacked by XSS is very high. High, an XSS attack may cause greater harm. [0003] At present, the defense method for XSS attacks is mainly to filter the keywords of the input information on the server and the client, but this method has a high rate of false positives, and cannot protect the network system in time, and when facing more complex network attacks Basically helpless. At the same time, some researchers have used machine learning algorithms to detect XSS at...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/24H04L29/06G06N7/00
CPCH04L41/145H04L63/145G06N7/01
Inventor 周鋆符鹏涛王培超丁兆云朱先强
Owner NAT UNIV OF DEFENSE TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap